Last Revised: November 2020
In order to provide our services to you and to promote our business, we will need to collect and process certain personal information about you.
If you have any questions at all about this policy or our Platform, or about how we use and process your personal information, please do not hesitate to contact us by emailing email@example.com or, alternatively, in writing to Kaido Group Ltd, iCentrum 6 Holt Street, Birmingham, B7 4BP.
Kaido is an online platform (the Platform) designed to help people take control of their health and wellbeing.
The Platform comprises a website and apps for iOS and Android and is located at https://kaido.org and associated subdomains.
Our approach to your privacy is very straightforward to understand.
The information we collect can be broken down broadly into two categories:
During registration we collect some information about you, such as your name and email address.
We use your name and email to send you
To enable us to provide quality health and wellbeing services to you, we need to collect both anonymous and personal information about you. We collect this information through your use of the Platform.
You are under no obligation to provide any such information at any time. However, should you choose not to do so, your experience of the Platform may be affected.
To help illustrate the nature of the personal information you have the option to provide to us, we have provided the following non-exhaustive examples:
From a connected health and fitness tracker:
From daily entry into the Kaido platform:
As you use Kaido we will monitor how you use the Platform in order to maintain your state (e.g. which content you have unlocked).
We may collect usage information about your use of our Platform in order to improve your experience and provide support. This information may include:
Cookies are small text files that are placed on your computer by websites that you visit. The table below explains the cookies we use and why.
Kaido's sites use the following cookies:
|_kaido_session||*.kaido.org||A functional cookie to manage your signed-in session on our web sites|
|intercom-*||*.kaido.org||A functional cookie that allows you to contact us for support. You can learn more about Intercom's cookies here.|
Kaido will only use or disclose the personal information you have chosen to provide us with for the purpose for which you provided it. Kaido will not use it for any other purpose without your explicit consent, except in situations listed under "Exceptional cases of data disclosure" below. We use your personal information to enable you to use our platform.
Some examples of how we will use your personal information to enable your use of the Platform include:
We may derive anonymised information from your personal data, which we may use or disclose for reporting purposes. For example, we may use or disclose anonymised information about participation in the Kaido Wellbeing challenge and aggregate performance information, and summary information about participants. We may also use or disclose this anonymised data for research purposes. For example, we may aggregate information into an anonymised data set to better understand aggregate sleep patterns and daily active movement for a defined population. In either scenario, we will not disclose information that can be linked back to you to any third party, including your employer.
As is true of most websites, our Platform gathers certain information automatically and stores it in log files. This information includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We use this information, to analyse trends, to administer the site, to analyse your movements around the site, and to gather demographic information about our user base, in order to improve the quality of our Platform.
Access to your personal data and other sensitive information is strictly restricted to Kaido Group Ltd employees and contractors, as needed in order to operate, develop or improve the Service, and subject to specific internal procedures and safeguards. These individuals are selected in accordance with our security policies and regulations and are bound by confidentiality obligations. They may be subject to disciplinary measures, including possible dismissal and other sanctions, if they fail to meet these obligations.
From time to time, we may request other personal information to provide you with other benefits of the Service. In all such instances, you will be given the option of whether or not to provide that information, and any information you provide will be used only for the purpose stated at the time you provide that information. After that purpose is achieved, the collected personal data will be deleted.
The GDPR (General Data Protection Regulation) is UK legislation that governs how we process data originating from users from the UK and the EU. Kaido aims to be GDPR compliant for all users, even those outside the UK/EU and you therefore have some important rights applicable to our Platform.
When processing individuals health data, our legal basis for data processing is based on individuals’ consent. During sign-up we obtain explicit consent to undertake this processing. You can take control of the scope of our processing by what you decide to share with us. There is no obligation for you to provide us with any health and wellbeing data and uploading that data is interpreted as consent to process each individual data point.
Occasionally we process data based on our legitimate interests. This might include, for instance, tracking application usage using data captured in our web server logs.
Kaido Group Ltd may be required to disclose personal data in response to lawful requests by public authorities, as follows;
The Kaido application runs on servers within the European Economic Area. All data stored on these services is subject to UK Data Protection legislation. Your data is encrypted at rest using the AES-256 encryption algorithm. Access to your data is restricted to authorised machines only and cannot be accessed via the Internet directly.
We do not rent or sell any Personal Information that we collect with third parties.
If you choose to publish personal information on our Platform (such as, for instance, your name on a public profile page), you will remain responsible and in control of that information. We reserve the right to remove any content we deem to be offensive or illegal.
In some instances, we may disclose your Personal Information to agents or contractors that work on our behalf and assist us in providing and supporting the services we offer.
We may share some personal data with your employer for usage purposes. For example, we may share your name, email address and any teams you join, in order that your employer may communicate appropriately throughout a challenge, and award medals. We will not share any sensitive data or data that falls under a special category of personal data, such as health data or biometric data.
We may also share anonymised and aggregated data with your employer in specific circumstances and for limited purposes, such as to evaluate the effectiveness of your company health and wellbeing initiatives. Your employer will not be able to use such anonymised information or aggregated reports to directly identify you. Your employer may use the anonymised information at its discretion.
If you choose to publish personal information on our Platform (such as, for instance, your name on a public profile page), you will remain responsible and in control of that information.
Upon request we will provide you with the information that we hold about you. If your Personal Information changes or is incorrect or outdated, you may correct, update, or amend it by making the change through the ‘settings’ section of the Platform.
Any information that you input into the system (e.g. daily steps completed, or reflections) are fully available and accessible to you at all times.
You can request deletion of your account and its associated data at anytime by emailing firstname.lastname@example.org
When your account is deleted, we will delete your associated data from our core database. Some data will persist for a limited time period within our automated backups.
You have a legal right under data protection law to a copy of all the information held about you by us. On request we will provide you with a copy of this information. You also have a right to correct any errors in that information.